Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7c243258 by Moritz Muehlenhoff at 2022-12-20T13:48:11+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -161,15 +161,15 @@ CVE-2022-47553
CVE-2022-47552
RESERVED
CVE-2022-47551 (Apiman 1.5.7 through 2.2.3.Final has insufficient checks for
read perm ...)
- TODO: check
+ NOT-FOR-US: apiman
CVE-2022-47550
RESERVED
CVE-2022-47549 (An unprotected memory-access operation in optee_os in
TrustedFirmware ...)
- TODO: check
+ NOT-FOR-US: OP-TEE
CVE-2022-47548
RESERVED
CVE-2022-47547 (GossipSub 1.1, as used for Ethereum 2.0, allows a peer to
maintain a p ...)
- TODO: check
+ NOT-FOR-US: GossipSub
CVE-2022-47546
RESERVED
CVE-2022-47545
@@ -181,9 +181,9 @@ CVE-2022-47543
CVE-2022-47542
RESERVED
CVE-2022-4615 (Cross-site Scripting (XSS) - Reflected in GitHub repository
openemr/op ...)
- TODO: check
+ NOT-FOR-US: OpenEMR
CVE-2022-4614 (Cross-site Scripting (XSS) - Stored in GitHub repository
alagrede/znot ...)
- TODO: check
+ NOT-FOR-US: znote-app
CVE-2022-4613 (A vulnerability was found in Click Studios Passwordstate and
Passwords ...)
NOT-FOR-US: Click Studios Passwordstate and Passwordstate Browser
Extension Chrome
CVE-2022-4612 (A vulnerability has been found in Click Studios Passwordstate
and Pass ...)
@@ -193,15 +193,15 @@ CVE-2022-4611 (A vulnerability, which was classified as
problematic, was found i
CVE-2022-4610 (A vulnerability, which was classified as problematic, has been
found i ...)
NOT-FOR-US: Click Studios Passwordstate and Passwordstate Browser
Extension Chrome
CVE-2022-4609 (Cross-site Scripting (XSS) - Stored in GitHub repository
usememos/memo ...)
- TODO: check
+ NOT-FOR-US: usememos
CVE-2022-4608
RESERVED
CVE-2021-4262 (A vulnerability classified as critical was found in
laravel-jqgrid. Af ...)
- TODO: check
+ NOT-FOR-US: laravel-jqgrid.
CVE-2021-4261 (A vulnerability classified as critical has been found in
pacman-canvas ...)
- TODO: check
+ NOT-FOR-US: pacman-canvas
CVE-2021-4260 (A vulnerability was found in oils-js. It has been declared as
critical ...)
- TODO: check
+ NOT-FOR-US: oils-js
CVE-2021-4259 (A vulnerability was found in phpRedisAdmin up to 1.17.3. It has
been c ...)
NOT-FOR-US: phpRedisAdmin
CVE-2021-4258 (** DISPUTED ** A vulnerability was found in whohas. It has been
rated ...)
@@ -209,9 +209,9 @@ CVE-2021-4258 (** DISPUTED ** A vulnerability was found in
whohas. It has been r
CVE-2020-36619 (A vulnerability was found in multimon-ng. It has been rated as
critica ...)
TODO: check
CVE-2020-36618 (A vulnerability classified as critical has been found in
Furqan node-w ...)
- TODO: check
+ NOT-FOR-US: Node whois
CVE-2016-20018 (Knex Knex.js through 2.3.0 has a limited SQL injection
vulnerability t ...)
- TODO: check
+ NOT-FOR-US: Knex
CVE-2022-47541
RESERVED
CVE-2022-47540
@@ -253,25 +253,25 @@ CVE-2022-47523
CVE-2022-4607 (A vulnerability was found in 3D City Database OGC Web Feature
Service ...)
NOT-FOR-US: 3D City Database OGC Web Feature Service
CVE-2021-4257 (A vulnerability was found in ctrlo lenio. It has been declared
as prob ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4256 (A vulnerability was found in ctrlo lenio. It has been
classified as pr ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4255 (A vulnerability was found in ctrlo lenio and classified as
problematic ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4254 (A vulnerability has been found in ctrlo lenio and classified as
proble ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4253 (A vulnerability, which was classified as problematic, was found
in ctr ...)
- TODO: check
+ NOT-FOR-US: ctrlo lenio
CVE-2021-4252 (A vulnerability, which was classified as problematic, has been
found i ...)
NOT-FOR-US: WP-Ban
CVE-2021-4251 (A vulnerability classified as problematic was found in as. This
vulner ...)
- TODO: check
+ NOT-FOR-US: andrewsauder/as
CVE-2021-4250 (A vulnerability classified as problematic has been found in
cgriego ac ...)
- TODO: check
+ NOT-FOR-US: ActiveAttr
CVE-2022-4606 (PHP Remote File Inclusion in GitHub repository
flatpressblog/flatpress ...)
- TODO: check
+ NOT-FOR-US: flatpressblog
CVE-2022-4605 (Cross-site Scripting (XSS) - Stored in GitHub repository
flatpressblog ...)
- TODO: check
+ NOT-FOR-US: flatpressblog
CVE-2022-4604 (A vulnerability classified as problematic was found in
wp-english-wp-a ...)
NOT-FOR-US: WordPress plugin
CVE-2022-4603 (** DISPUTED ** A vulnerability classified as problematic has
been foun ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c243258825f314096cc4d646ebb189743667dc2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c243258825f314096cc4d646ebb189743667dc2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
